I am working on a custom single sign on project. The main web site runs on BEA Weblogic. When an user logs into the site, the site is supposed to store login ID and password in a cookie. When the same user connects to another secure sub-site based on asp.net, the sub-site will do an automatic login for the user based on the stored cookie information. To increase security, I would like to encrypt the stored ID and password.
Can you recommend a good encryption/decryption routine that works across the two different platforms? I understand storing ID and password in a cookie is not really a secure solution, but I am trying make the login process as fast as I can.